clonebox 1.1.18__py3-none-any.whl → 1.1.19__py3-none-any.whl

clonebox/health/probes.py

@@ -8,6 +8,7 @@ from abc import ABC, abstractmethod
 from datetime import datetime
 from typing import Optional
 
+from clonebox.policies import PolicyEngine, PolicyViolationError
 from .models import HealthCheckResult, HealthStatus, ProbeConfig
 
 try:
@@ -57,6 +58,19 @@ class HTTPProbe(HealthProbe):
 
         start = time.time()
         try:
+            policy = PolicyEngine.load_effective()
+            if policy is not None:
+                try:
+                    policy.assert_url_allowed(config.url)
+                except PolicyViolationError as e:
+                    duration_ms = (time.time() - start) * 1000
+                    return self._create_result(
+                        config,
+                        HealthStatus.UNHEALTHY,
+                        duration_ms,
+                        error=str(e),
+                    )
+
             req = urllib.request.Request(
                 config.url,
                 method=config.method,

clonebox/policies/__init__.py

@@ -0,0 +1,13 @@
+from .engine import PolicyEngine, PolicyValidationError, PolicyViolationError
+from .models import PolicyFile, PolicySet, NetworkPolicy, OperationsPolicy, ResourcesPolicy
+
+__all__ = [
+    "PolicyEngine",
+    "PolicyValidationError",
+    "PolicyViolationError",
+    "PolicyFile",
+    "PolicySet",
+    "NetworkPolicy",
+    "OperationsPolicy",
+    "ResourcesPolicy",
+]

clonebox/policies/engine.py

@@ -0,0 +1,112 @@
+from __future__ import annotations
+
+import fnmatch
+from dataclasses import dataclass
+from pathlib import Path
+from typing import List, Optional
+
+import yaml
+
+from .models import PolicyFile
+from .validators import extract_hostname, is_host_allowed
+
+
+class PolicyValidationError(ValueError):
+    pass
+
+
+class PolicyViolationError(PermissionError):
+    pass
+
+
+DEFAULT_PROJECT_POLICY_FILES = (".clonebox-policy.yaml", ".clonebox-policy.yml")
+DEFAULT_GLOBAL_POLICY_FILE = Path.home() / ".clonebox.d" / "policy.yaml"
+
+
+@dataclass(frozen=True)
+class PolicyEngine:
+    policy: PolicyFile
+    source: Path
+
+    @classmethod
+    def load(cls, path: Path) -> "PolicyEngine":
+        try:
+            raw = yaml.safe_load(path.read_text())
+        except Exception as e:
+            raise PolicyValidationError(f"Failed to read policy file {path}: {e}")
+
+        if not isinstance(raw, dict):
+            raise PolicyValidationError("Policy file must be a YAML mapping")
+
+        try:
+            policy = PolicyFile.model_validate(raw)
+        except Exception as e:
+            raise PolicyValidationError(str(e))
+
+        return cls(policy=policy, source=path)
+
+    @classmethod
+    def find_policy_file(cls, start: Optional[Path] = None) -> Optional[Path]:
+        start_path = (start or Path.cwd()).expanduser().resolve()
+        if start_path.is_file():
+            start_path = start_path.parent
+
+        current = start_path
+        while True:
+            for name in DEFAULT_PROJECT_POLICY_FILES:
+                candidate = current / name
+                if candidate.exists() and candidate.is_file():
+                    return candidate
+
+            if current.parent == current:
+                break
+            current = current.parent
+
+        if DEFAULT_GLOBAL_POLICY_FILE.exists() and DEFAULT_GLOBAL_POLICY_FILE.is_file():
+            return DEFAULT_GLOBAL_POLICY_FILE
+
+        return None
+
+    @classmethod
+    def load_effective(cls, start: Optional[Path] = None) -> Optional["PolicyEngine"]:
+        policy_path = cls.find_policy_file(start=start)
+        if not policy_path:
+            return None
+        return cls.load(policy_path)
+
+    def assert_url_allowed(self, url: str) -> None:
+        network = self.policy.policies.network
+        if network is None:
+            return
+
+        hostname = extract_hostname(url)
+        if not hostname:
+            raise PolicyViolationError(f"URL has no hostname: {url}")
+
+        if not is_host_allowed(hostname, network.allowlist, network.blocklist):
+            raise PolicyViolationError(f"Network access denied by policy: {hostname}")
+
+    @staticmethod
+    def _operation_matches(operation: str, pattern: str) -> bool:
+        operation = (operation or "").strip().lower()
+        pattern = (pattern or "").strip().lower()
+        if not operation or not pattern:
+            return False
+        return fnmatch.fnmatch(operation, pattern)
+
+    def requires_approval(self, operation: str) -> bool:
+        ops = self.policy.policies.operations
+        if ops is None:
+            return False
+
+        if any(self._operation_matches(operation, p) for p in ops.auto_approve or []):
+            return False
+        return any(
+            self._operation_matches(operation, p) for p in ops.require_approval or []
+        )
+
+    def assert_operation_approved(self, operation: str, approved: bool) -> None:
+        if self.requires_approval(operation) and not approved:
+            raise PolicyViolationError(
+                f"Operation requires approval by policy: {operation} (pass --approve)"
+            )

clonebox/policies/models.py

@@ -0,0 +1,55 @@
+from __future__ import annotations
+
+from typing import List, Optional
+
+from pydantic import BaseModel, Field, field_validator
+
+
+class NetworkPolicy(BaseModel):
+    allowlist: List[str] = Field(default_factory=list)
+    blocklist: List[str] = Field(default_factory=list)
+
+    @field_validator("allowlist", "blocklist")
+    @classmethod
+    def _validate_patterns(cls, v: List[str]) -> List[str]:
+        if v is None:
+            return []
+        if not isinstance(v, list):
+            raise TypeError("must be a list")
+        for item in v:
+            if not isinstance(item, str) or not item.strip():
+                raise ValueError("patterns must be non-empty strings")
+        return v
+
+
+class OperationsPolicy(BaseModel):
+    require_approval: List[str] = Field(default_factory=list)
+    auto_approve: List[str] = Field(default_factory=list)
+
+    @field_validator("require_approval", "auto_approve")
+    @classmethod
+    def _validate_ops(cls, v: List[str]) -> List[str]:
+        if v is None:
+            return []
+        if not isinstance(v, list):
+            raise TypeError("must be a list")
+        for item in v:
+            if not isinstance(item, str) or not item.strip():
+                raise ValueError("operation names must be non-empty strings")
+        return v
+
+
+class ResourcesPolicy(BaseModel):
+    max_vms_per_user: Optional[int] = None
+    max_disk_gb: Optional[int] = None
+
+
+class PolicySet(BaseModel):
+    network: Optional[NetworkPolicy] = None
+    operations: Optional[OperationsPolicy] = None
+    resources: Optional[ResourcesPolicy] = None
+
+
+class PolicyFile(BaseModel):
+    version: str
+    policies: PolicySet

clonebox/policies/validators.py

@@ -0,0 +1,26 @@
+from __future__ import annotations
+
+import fnmatch
+from typing import List
+from urllib.parse import urlparse
+
+
+def extract_hostname(url: str) -> str:
+    parsed = urlparse(url)
+    return (parsed.hostname or "").strip().lower()
+
+
+def host_matches(hostname: str, pattern: str) -> bool:
+    hostname = (hostname or "").strip().lower()
+    pattern = (pattern or "").strip().lower()
+    if not hostname or not pattern:
+        return False
+    return fnmatch.fnmatch(hostname, pattern)
+
+
+def is_host_allowed(hostname: str, allowlist: List[str], blocklist: List[str]) -> bool:
+    if any(host_matches(hostname, p) for p in blocklist or []):
+        return False
+    if allowlist:
+        return any(host_matches(hostname, p) for p in allowlist)
+    return True

clonebox/validator.py

@@ -32,8 +32,8 @@ class VMValidator:
         self.require_running_apps = require_running_apps
         self.smoke_test = smoke_test
         self.results = {
-            "mounts": {"passed": 0, "failed": 0, "total": 0, "details": []},
-            "packages": {"passed": 0, "failed": 0, "total": 0, "details": []},
+            "mounts": {"passed": 0, "failed": 0, "skipped": 0, "total": 0, "details": []},
+            "packages": {"passed": 0, "failed": 0, "skipped": 0, "total": 0, "details": []},
             "snap_packages": {
                 "passed": 0,
                 "failed": 0,
@@ -41,7 +41,8 @@ class VMValidator:
                 "total": 0,
                 "details": [],
             },
-            "services": {"passed": 0, "failed": 0, "total": 0, "details": []},
+            "services": {"passed": 0, "failed": 0, "skipped": 0, "total": 0, "details": []},
+            "disk": {"usage_pct": 0, "avail": "0", "total": "0"},
             "apps": {"passed": 0, "failed": 0, "skipped": 0, "total": 0, "details": []},
             "smoke": {"passed": 0, "failed": 0, "skipped": 0, "total": 0, "details": []},
             "overall": "unknown",
@@ -129,6 +130,7 @@ class VMValidator:
 
     def validate_mounts(self) -> Dict:
         """Validate all mount points and copied data paths."""
+        setup_in_progress = self._setup_in_progress_cache is True
         self.console.print("\n[bold]💾 Validating Mounts & Data...[/]")
 
         paths = self.config.get("paths", {})
@@ -145,7 +147,13 @@ class VMValidator:
         mount_output = self._exec_in_vm("mount | grep 9p")
         mounted_paths = []
         if mount_output:
-            mounted_paths = [line.split()[2] for line in mount_output.split("\n") if line.strip()]
+            for line in mount_output.split("\n"):
+                line = line.strip()
+                if not line:
+                    continue
+                parts = line.split()
+                if len(parts) >= 3:
+                    mounted_paths.append(parts[2])
 
         mount_table = Table(title="Data Validation", border_style="cyan")
         mount_table.add_column("Guest Path", style="bold")
@@ -154,7 +162,6 @@ class VMValidator:
         mount_table.add_column("Files", justify="right")
 
         # Validate bind mounts (paths)
-        setup_in_progress = self._setup_in_progress() is True
         for host_path, guest_path in paths.items():
             self.results["mounts"]["total"] += 1
             
@@ -185,6 +192,7 @@ class VMValidator:
             elif setup_in_progress:
                 status_icon = "[yellow]⏳ Pending[/]"
                 status = "pending"
+                self.results["mounts"]["skipped"] += 1
             else:
                 status_icon = "[red]❌ Not Mounted[/]"
                 self.results["mounts"]["failed"] += 1
@@ -225,6 +233,7 @@ class VMValidator:
             elif setup_in_progress:
                 status_icon = "[yellow]⏳ Pending[/]"
                 status = "pending"
+                self.results["mounts"]["skipped"] += 1
             else:
                 status_icon = "[red]❌ Missing[/]"
                 self.results["mounts"]["failed"] += 1
@@ -249,6 +258,7 @@ class VMValidator:
 
     def validate_packages(self) -> Dict:
         """Validate APT packages are installed."""
+        setup_in_progress = self._setup_in_progress() is True
         self.console.print("\n[bold]📦 Validating APT Packages...[/]")
 
         packages = self.config.get("packages", [])
@@ -261,8 +271,6 @@ class VMValidator:
         pkg_table.add_column("Status", justify="center")
         pkg_table.add_column("Version", style="dim")
 
-        setup_in_progress = self._setup_in_progress() is True
-
         for package in packages:
             self.results["packages"]["total"] += 1
 
@@ -279,6 +287,7 @@ class VMValidator:
             else:
                 if setup_in_progress:
                     pkg_table.add_row(package, "[yellow]⏳ Pending[/]", "")
+                    self.results["packages"]["skipped"] += 1
                     self.results["packages"]["details"].append(
                         {"package": package, "installed": False, "version": None, "pending": True}
                     )
@@ -298,6 +307,7 @@ class VMValidator:
 
     def validate_snap_packages(self) -> Dict:
         """Validate snap packages are installed."""
+        setup_in_progress = self._setup_in_progress() is True
         self.console.print("\n[bold]📦 Validating Snap Packages...[/]")
 
         snap_packages = self.config.get("snap_packages", [])
@@ -310,8 +320,6 @@ class VMValidator:
         snap_table.add_column("Status", justify="center")
         snap_table.add_column("Version", style="dim")
 
-        setup_in_progress = self._setup_in_progress() is True
-
         for package in snap_packages:
             self.results["snap_packages"]["total"] += 1
 
@@ -379,6 +387,7 @@ class VMValidator:
 
     def validate_services(self) -> Dict:
         """Validate services are enabled and running."""
+        setup_in_progress = self._setup_in_progress() is True
         self.console.print("\n[bold]⚙️  Validating Services...[/]")
 
         services = self.config.get("services", [])
@@ -396,8 +405,6 @@ class VMValidator:
         svc_table.add_column("PID", justify="right", style="dim")
         svc_table.add_column("Note", style="dim")
 
-        setup_in_progress = self._setup_in_progress() is True
-
         for service in services:
             if service in self.VM_EXCLUDED_SERVICES:
                 svc_table.add_row(service, "[dim]—[/]", "[dim]—[/]", "[dim]—[/]", "host-only")
@@ -414,7 +421,6 @@ class VMValidator:
                 continue
 
             self.results["services"]["total"] += 1
-            setup_in_progress = self._setup_in_progress() is True
 
             enabled_cmd = f"systemctl is-enabled {service} 2>/dev/null"
             enabled_status = self._exec_in_vm(enabled_cmd)
@@ -443,7 +449,9 @@ class VMValidator:
 
             if is_enabled and is_running:
                 self.results["services"]["passed"] += 1
-            elif not setup_in_progress:
+            elif setup_in_progress:
+                self.results["services"]["skipped"] += 1
+            else:
                 self.results["services"]["failed"] += 1
 
             self.results["services"]["details"].append(
@@ -466,6 +474,7 @@ class VMValidator:
         return self.results["services"]
 
     def validate_apps(self) -> Dict:
+        setup_in_progress = self._setup_in_progress() is True
         packages = self.config.get("packages", [])
         snap_packages = self.config.get("snap_packages", [])
         # Support both v1 (app_data_paths) and v2 (copy_paths) config formats
@@ -651,8 +660,6 @@ class VMValidator:
             note = ""
             pending = False
 
-            setup_in_progress = self._setup_in_progress() is True
-
             if app == "firefox":
                 installed = (
                     self._exec_in_vm("command -v firefox >/dev/null 2>&1 && echo yes || echo no")
@@ -718,6 +725,9 @@ class VMValidator:
             if setup_in_progress and not installed:
                 pending = True
                 note = note or "setup in progress"
+            elif setup_in_progress and not profile_ok:
+                pending = True
+                note = note or "profile import in progress"
 
             running_icon = (
                 "[dim]—[/]"
@@ -768,6 +778,7 @@ class VMValidator:
         return self.results["apps"]
 
     def validate_smoke_tests(self) -> Dict:
+        setup_in_progress = self._setup_in_progress() is True
         packages = self.config.get("packages", [])
         snap_packages = self.config.get("snap_packages", [])
         # Support both v1 (app_data_paths) and v2 (copy_paths) config formats
@@ -890,7 +901,6 @@ class VMValidator:
         table.add_column("Launch", justify="center")
         table.add_column("Note", style="dim")
 
-        setup_in_progress = self._setup_in_progress() is True
         for app in expected:
             self.results["smoke"]["total"] += 1
             installed = _installed(app)
@@ -974,6 +984,7 @@ class VMValidator:
 
     def validate_disk_space(self) -> Dict:
         """Validate disk space on root filesystem."""
+        setup_in_progress = self._setup_in_progress() is True
         self.console.print("\n[bold]💾 Validating Disk Space...[/]")
         
         df_output = self._exec_in_vm("df -h / --output=pcent,avail,size | tail -n 1", timeout=20)
@@ -995,10 +1006,10 @@ class VMValidator:
                 "total": total
             }
 
-            if usage_pct > 95:
+            if usage_pct > 90:
                 self.console.print(f"[red]❌ Disk nearly full: {usage_pct}% used ({avail} available of {total})[/]")
                 status = "fail"
-            elif usage_pct > 80:
+            elif usage_pct > 85:
                 self.console.print(f"[yellow]⚠️  Disk usage high: {usage_pct}% used ({avail} available of {total})[/]")
                 status = "warning"
             else:
@@ -1106,6 +1117,7 @@ class VMValidator:
 
     def validate_all(self) -> Dict:
         """Run all validations and return comprehensive results."""
+        setup_in_progress = self._setup_in_progress() is True
         self.console.print("[bold cyan]🔍 Running Full Validation...[/]")
 
         # Check if VM is running
@@ -1129,6 +1141,14 @@ class VMValidator:
             return self.results
 
         # Check QEMU Guest Agent
+        if not self._check_qga_ready():
+            wait_deadline = time.time() + 180
+            self.console.print("[yellow]⏳ Waiting for QEMU Guest Agent (up to 180s)...[/]")
+            while time.time() < wait_deadline:
+                time.sleep(5)
+                if self._check_qga_ready():
+                    break
+
         if not self._check_qga_ready():
             self.console.print("[red]❌ QEMU Guest Agent not responding[/]")
             self.console.print("\n[bold]🔧 Troubleshooting QGA:[/]")
@@ -1143,7 +1163,6 @@ class VMValidator:
             return self.results
 
         ci_status = self._exec_in_vm("cloud-init status --long 2>/dev/null || cloud-init status 2>/dev/null || true", timeout=20)
-        setup_in_progress = False
         if ci_status:
             ci_lower = ci_status.lower()
             if "running" in ci_lower:
@@ -1180,8 +1199,10 @@ class VMValidator:
                 )
 
         # Calculate overall status
+        disk_failed = 1 if self.results.get("disk", {}).get("usage_pct", 0) > 90 else 0
         total_checks = (
-            self.results["mounts"]["total"]
+            1 # Disk space check
+            + self.results["mounts"]["total"]
             + self.results["packages"]["total"]
             + self.results["snap_packages"]["total"]
             + self.results["services"]["total"]
@@ -1190,7 +1211,8 @@ class VMValidator:
         )
 
         total_passed = (
-            self.results["mounts"]["passed"]
+            (1 - disk_failed)
+            + self.results["mounts"]["passed"]
             + self.results["packages"]["passed"]
             + self.results["snap_packages"]["passed"]
             + self.results["services"]["passed"]
@@ -1199,7 +1221,8 @@ class VMValidator:
         )
 
         total_failed = (
-            self.results["mounts"]["failed"]
+            disk_failed
+            + self.results["mounts"]["failed"]
             + self.results["packages"]["failed"]
             + self.results["snap_packages"]["failed"]
             + self.results["services"]["failed"]
@@ -1207,12 +1230,14 @@ class VMValidator:
             + (self.results["smoke"]["failed"] if self.smoke_test else 0)
         )
 
-        # Get skipped services count
+        # Get skipped counts
+        skipped_mounts = self.results["mounts"].get("skipped", 0)
+        skipped_packages = self.results["packages"].get("skipped", 0)
         skipped_services = self.results["services"].get("skipped", 0)
         skipped_snaps = self.results["snap_packages"].get("skipped", 0)
         skipped_apps = self.results["apps"].get("skipped", 0)
         skipped_smoke = self.results["smoke"].get("skipped", 0) if self.smoke_test else 0
-        total_skipped = skipped_services + skipped_snaps + skipped_apps + skipped_smoke
+        total_skipped = skipped_mounts + skipped_packages + skipped_services + skipped_snaps + skipped_apps + skipped_smoke
 
         # Print summary
         self.console.print("\n[bold]📊 Validation Summary[/]")
@@ -1220,21 +1245,38 @@ class VMValidator:
         summary_table.add_column("Category", style="bold")
         summary_table.add_column("Passed", justify="right", style="green")
         summary_table.add_column("Failed", justify="right", style="red")
-        summary_table.add_column("Skipped", justify="right", style="dim")
+        summary_table.add_column("Skipped/Pending", justify="right", style="dim")
         summary_table.add_column("Total", justify="right")
 
+        # Add Disk Space row
+        disk_usage_pct = self.results.get("disk", {}).get("usage_pct", 0)
+        disk_avail = self.results.get("disk", {}).get("avail", "?")
+        disk_total = self.results.get("disk", {}).get("total", "?")
+        
+        # Calculate used space if possible
+        disk_status_passed = "[green]OK[/]" if disk_usage_pct <= 90 else "—"
+        disk_status_failed = "—" if disk_usage_pct <= 90 else f"[red]FULL ({disk_usage_pct}%)[/]"
+
+        summary_table.add_row(
+            "Disk Space",
+            disk_status_passed,
+            disk_status_failed,
+            "—",
+            f"{disk_usage_pct}% of {disk_total} ({disk_avail} free)",
+        )
+        
         summary_table.add_row(
             "Mounts",
             str(self.results["mounts"]["passed"]),
             str(self.results["mounts"]["failed"]),
-            "—",
+            str(skipped_mounts) if skipped_mounts else "—",
             str(self.results["mounts"]["total"]),
         )
         summary_table.add_row(
             "APT Packages",
             str(self.results["packages"]["passed"]),
             str(self.results["packages"]["failed"]),
-            "—",
+            str(skipped_packages) if skipped_packages else "—",
             str(self.results["packages"]["total"]),
         )
         summary_table.add_row(
@@ -1248,7 +1290,7 @@ class VMValidator:
             "Services",
             str(self.results["services"]["passed"]),
             str(self.results["services"]["failed"]),
-            str(skipped_services),
+            str(skipped_services) if skipped_services else "—",
             str(self.results["services"]["total"]),
         )
         summary_table.add_row(

{clonebox-1.1.18.dist-info → clonebox-1.1.19.dist-info}/METADATA

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: clonebox
-Version: 1.1.18
+Version: 1.1.19
 Summary: Clone your workstation environment to an isolated VM with selective apps, paths and services
 Author: CloneBox Team
 License: Apache-2.0

{clonebox-1.1.18.dist-info → clonebox-1.1.19.dist-info}/RECORD

@@ -1,8 +1,8 @@
 clonebox/__init__.py,sha256=CyfHVVq6KqBr4CNERBpXk_O6Q5B35q03YpdQbokVvvI,408
 clonebox/__main__.py,sha256=Fcoyzwwyz5-eC_sBlQk5a5RbKx8uodQz5sKJ190U0NU,135
 clonebox/audit.py,sha256=1W9vaIjB0A--_p7CgE3cIP5RNckJG1RxJrL-tOb-QmU,14298
-clonebox/cli.py,sha256=x0VQ9WI1KZrNQGAh7FDf_036jDypdT5Q7vuTlr-dgi0,179087
-clonebox/cloner.py,sha256=WEMNjhHVdXwiA2zCq14fr5eVD6vhLuX4vnJ47p3SiNI,107839
+clonebox/cli.py,sha256=yxGj733N1OUt8m4UzqxGV9jBZCdehychpV8KRi7zZJU,179262
+clonebox/cloner.py,sha256=rU5MERLn2JwayjLM2RsMeOWdY0xJSkCVzXl7dj9uIVM,111622
 clonebox/container.py,sha256=tiYK1ZB-DhdD6A2FuMA0h_sRNkUI7KfYcJ0tFOcdyeM,6105
 clonebox/dashboard.py,sha256=dMY6odvPq3j6FronhRRsX7aY3qdCwznB-aCWKEmHDNw,5768
 clonebox/detector.py,sha256=vS65cvFNPmUBCX1Y_TMTnSRljw6r1Ae9dlVtACs5XFc,23075
@@ -20,14 +20,14 @@ clonebox/resource_monitor.py,sha256=lDR9KyPbVtImeeOkOBPPVP-5yCgoL5hsVFPZ_UqsY0w,
 clonebox/resources.py,sha256=IkuM4OdSDV4qhyc0eIynwbAHBTv0aVSxxW-gghsnCAs,6815
 clonebox/rollback.py,sha256=hpwO-8Ehe1pW0wHuZvJkC_qxZ6yEo9otCJRhGIUArCo,5711
 clonebox/secrets.py,sha256=l1jwJcEPB1qMoGNLPjyrkKKr1khh9VmftFJI9BWhgK0,10628
-clonebox/validator.py,sha256=PWPgkR9cjewTh6-uW_2YyjxuEj2wI9O7h7hk7NK8nAI,51181
-clonebox/backends/libvirt_backend.py,sha256=sIHFIvFO1hIOXEFR_foSkOGBgIzaJVQs-njOU8GdafA,7170
+clonebox/validator.py,sha256=2d14DHSo7Im-fFJaaDeACN1H82728FmwcZDSPVKbG44,53368
+clonebox/backends/libvirt_backend.py,sha256=_HxB2itduhDsXrWoNTqelUqHEXnPqbnBuFNu8XJkNFA,7269
 clonebox/backends/qemu_disk.py,sha256=YsGjYX5sbEf35Y4yjTpNkZat73a4RGBxY-KTVzJhqIs,1687
 clonebox/backends/subprocess_runner.py,sha256=c-IyaMxM1cmUu64h654oAvulm83K5Mu-VQxXJ_0BOds,1506
 clonebox/health/__init__.py,sha256=aKJJPQwJLnoCY728QuKUxYx1TZyooGEnyUVOegZ58Ok,422
 clonebox/health/manager.py,sha256=6nn0a8QtxeEuuafDbn5ZBqHQdaJ2qg7yTstyAGPJWP0,9987
 clonebox/health/models.py,sha256=sPumwj8S-88KgzSGw1Kq9bBbPVRd2RR0R87Z8hKJ_28,6001
-clonebox/health/probes.py,sha256=CkiGcayqRRysqaBJst-YpSrvUzMdwsqD4TiQSluLt3Y,11305
+clonebox/health/probes.py,sha256=1tu0wi5TZ3Nk8z_cVDUZ7DVDrt7sY0AHJHqi9qn3ChA,11874
 clonebox/interfaces/disk.py,sha256=F7Xzj2dq5UTZ2KGCuThDM8bwTps6chFbquOUmfLREjI,985
 clonebox/interfaces/hypervisor.py,sha256=8ms4kZLA-5Ba1e_n68mCucwP_K9mufbmTBlo7XzURn4,1991
 clonebox/interfaces/network.py,sha256=YPIquxEB7sZHczbpuopcZpffTjWYI6cKmAu3wAEFllk,853
@@ -35,14 +35,18 @@ clonebox/interfaces/process.py,sha256=njvAIZw_TCjw01KpyVQKIDoRvhTwl0FfVGbQ6mxTRO
 clonebox/plugins/__init__.py,sha256=3cxlz159nokZCOL2c017WqTwt5z00yyn-o-SemP1g6c,416
 clonebox/plugins/base.py,sha256=A2H-2vrYUczNZCDioQ8cAtvaSob4YpXutx7FWMjksC4,10133
 clonebox/plugins/manager.py,sha256=W2ithedEEOh9iWSq3_M5_g2SQWl85aI5qrvrjOKv02I,16842
+clonebox/policies/__init__.py,sha256=I7mDDU_gyZKb2pdyp7WUoN53p5qLxRxBOgHSNuPfNr8,365
+clonebox/policies/engine.py,sha256=Wf6uG3-yf2YNOjLnpvACp5fUM5elNpK68ta_2ccmk_g,3573
+clonebox/policies/models.py,sha256=BO5rFv21YUOjgfSgcgJUhBwUo5_0z2If1c4Io3ruo0k,1648
+clonebox/policies/validators.py,sha256=rVAsbIMxKLpU1WeRDXkY4i282e0H25kaK6WshGmPxoQ,756
 clonebox/snapshots/__init__.py,sha256=ndlrIavPAiA8z4Ep3-D_EPhOcjNKYFnP3rIpEKaGdb8,273
 clonebox/snapshots/manager.py,sha256=hGzM8V6ZJPXjTqj47c4Kr8idlE-c1Q3gPUvuw1HvS1A,11393
 clonebox/snapshots/models.py,sha256=sRnn3OZE8JG9FZJlRuA3ihO-JXoPCQ3nD3SQytflAao,6206
 clonebox/templates/profiles/ml-dev.yaml,sha256=w07MToGh31xtxpjbeXTBk9BkpAN8A3gv8HeA3ESKG9M,461
 clonebox/templates/profiles/web-stack.yaml,sha256=EBnnGMzML5vAjXmIUbCpbTCwmRaNJiuWd3EcL43DOK8,485
-clonebox-1.1.18.dist-info/licenses/LICENSE,sha256=xx0jnfkXJvxRnG63LTGOxlggYnIysveWIZ6H3PNdCrQ,11357
-clonebox-1.1.18.dist-info/METADATA,sha256=n1VJE8-Mk-zf9QgHBbvt1Z5fbJMdpD1vjZVVjEBeaxE,49052
-clonebox-1.1.18.dist-info/WHEEL,sha256=wUyA8OaulRlbfwMtmQsvNngGrxQHAvkKcvRmdizlJi0,92
-clonebox-1.1.18.dist-info/entry_points.txt,sha256=FES95Vi3btfViLEEoHdb8nikNxTqzaooi9ehZw9ZfWI,47
-clonebox-1.1.18.dist-info/top_level.txt,sha256=LdMo2cvCrEcRGH2M8JgQNVsCoszLV0xug6kx1JnaRjo,9
-clonebox-1.1.18.dist-info/RECORD,,
+clonebox-1.1.19.dist-info/licenses/LICENSE,sha256=xx0jnfkXJvxRnG63LTGOxlggYnIysveWIZ6H3PNdCrQ,11357
+clonebox-1.1.19.dist-info/METADATA,sha256=mJT8xFHNlOOcqtT7eINj2-QmcIaB4Otz32bUdcATmic,49052
+clonebox-1.1.19.dist-info/WHEEL,sha256=wUyA8OaulRlbfwMtmQsvNngGrxQHAvkKcvRmdizlJi0,92
+clonebox-1.1.19.dist-info/entry_points.txt,sha256=FES95Vi3btfViLEEoHdb8nikNxTqzaooi9ehZw9ZfWI,47
+clonebox-1.1.19.dist-info/top_level.txt,sha256=LdMo2cvCrEcRGH2M8JgQNVsCoszLV0xug6kx1JnaRjo,9
+clonebox-1.1.19.dist-info/RECORD,,